3. What is the ISO27001 certification?
ISO27001 certificate is given by a certification body and regularly audited to continuously improve the information security management systems. Where your business applies the ISO27001 standard, it may be recommended for certification. The various parts of the standard which must be met otherwise it will impact the certification. Before your current certificate comes to an end re-certification plan should be pre-scheduled in advance.
4. Our ISO27001 consultancy
The services below are either dealing with the business ISMS implementation, extending a scope or on-going continuous improvement to an existing ISMS.
4.1 Implementing ISMS ISO27001 cosultancy
This consultancy service is for those businesses wishing to implement or obtain a ISO27001 certification. We will consider some of the ISMS following components:
Scope: Determine the scope within your business with objectives and sites.
Policies, records and plan: Create, update or annual review of ISMS policy, policies, records and business continuity plan.
Controls: Review of ISO27001 controls implementation and management of controls or ISO27002 practices with business security risk and plan to remedy the risk as per the risk register.
Testing and audits: Independent ISO 27001 penetration testing and plan ISO 27001 audit.
Training: Provide the business the relevant ISMS training.
4.2 Ongoing ISMS managed service
This managed service is for those businesses which need access to an ISO27001 certified subject matter expert giving them someone who solely focuses on closing the open items working with different areas to get them through the current and future audits with any of the above at the same time making the ISMS mature.
Presales: Completing and standardise security questionnaire and supplier questionnaires.
Reduce non-conformities: Progress and complete the improvements needed to the ISMS.
Policies, records and plan: Annual review of polices records and business continuity plan.
Controls: Annual review of ISO27001 controls which contain risk and risk treatment.
Testing and audits: Facilitate independent recurring testing and chair ISO 27001 audit.
Training: Refresher training on ISMS.
5. Why you should choose our IS027001 service?
Take your ISMS from non-conforming to conforming with the ISO27001 standard. We help your business to implement and manage ISO27001,where the auditors or certification bodies see the transformation.
As the main contact that has managed ISO27001 and kept certification on track having lead deals with a software company.
We have industry experience and have worked with customers to close the gap with ISO27001 compliance.
We provide certified expert consultant. Some of our benefits include: